Check: SRG-APP-000378-NDM-000302
Network Device Management SRG:
SRG-APP-000378-NDM-000302
(in versions v4 r3 through v2 r7)
Title
The network device must prohibit installation of software without explicit privileged status. (Cat II impact)
Discussion
Allowing anyone to install software, without explicit privileges, creates the risk that untested or potentially malicious software will be installed on the system. This requirement applies to code changes and upgrades for all network devices.
Check Content
Determine if the network device prohibits installation of software without explicit privileged status. This requirement may be verified by demonstration or configuration review. If installation of software is not prohibited without explicit privileged status, this is a finding.
Fix Text
Configure the network device to prohibit installation of software without explicit privileged status.
Additional Identifiers
Rule ID: SV-202105r879751_rule
Vulnerability ID: V-202105
Group Title: SRG-APP-000378
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001812 |
The information system prohibits user installation of software without explicit privileged status. |
Controls
Number | Title |
---|---|
CM-11 (2) |
Prohibit Installation Without Privileged Status |